Why do some people manage phishing e-mails better than others?
Files
(Restricted Access)
Date
2012
Authors
Pattinson, M.
Jerram, C.
Parsons, K.
McCormac, A.
Butavicius, M.
Editors
Clarke, N.
Advisors
Journal Title
Journal ISSN
Volume Title
Type:
Journal article
Citation
Information Management and Computer Security, 2012; 20(1):18-28
Statement of Responsibility
Malcolm Pattinson, Cate Jerram, Kathryn Parsons, Agata McCormac and Marcus Butavicius
Conference Name
Abstract
PURPOSE: The purpose of this paper is to investigate the behaviour response of computer users when either phishing e-mails or genuine e-mails arrive in their inbox. The paper describes how this research was conducted and presents and discusses the findings. DESIGN/METHODOLOGY/APPROACH: This study was a scenario-based role-play experiment that involved the development of a web-based questionnaire that was only accessible by invited participants when they attended a one-hour, facilitated session in a computer laboratory. FINDINGS: The findings indicate that overall, genuine e-mails were managed better than phishing e-mails. However, informed participants managed phishing e-mails better than not-informed participants. Other findings show how familiarity with computers, cognitive impulsivity and personality traits affect behavioural responses to both types of e-mail. RESEARCH LIMITATIONS/IMPLICATIONS : This study does not claim to evaluate actual susceptibility to phishing emails. The subjects were University students and therefore the conclusions are not necessarily representative of the general population of e-mail users. PRACTICAL IMPLICATIONS: The outcomes of this research would assist management in their endeavours to improve computer user behaviour and, as a result, help to mitigate risks to their organisational information systems. ORIGINALITY/VALUE : The literature review indicates that this paper addresses a genuine gap in the research.
School/Discipline
Dissertation Note
Provenance
Description
Access Status
Rights
© Emerald Group Publishing Limited